ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

marktodocx-skill

v0.1.2

Convert Markdown into a DOCX file using the shared marktodocx Node runtime. Use when the user explicitly wants Markdown content or a Markdown file converted...

0· 52·0 current·0 all-time
by@zhao-kun
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
Crypto
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name and description match the included files: the package exports skill.mjs and a Node runtime wrapper (convertWithAgentSkill). Vendored runtime artifacts (optional Mermaid runtime and a bundled Chromium) are present and are consistent with the SKILL.md documentation about Mermaid support.
Instruction Scope
SKILL.md restricts behavior to reading repo files, importing convertWithAgentSkill(), and writing DOCX output. It explicitly disables autonomous model invocation and asks the agent to be invoked directly. The instructions do not request unrelated credentials or arbitrary system files.
Install Mechanism
There is no remote install script (low download risk), but the exported artifact bundles a platform-specific Chromium and vendor tarballs inside the dist/ tree (marktodocx-export-manifest shows profile 'with-mermaid' and a vendored chrome path). Bundling a browser and node_modules is heavier than typical and increases the attack surface (executable binary included, plus launch args --no-sandbox and --disable-setuid-sandbox recorded). This is explainable for Mermaid rendering, but you should verify the binaries and prefer the non-mermaid export if you don't need it.
Credentials
The skill requests no credentials and only documents optional style-related environment variables (MARKTODOCX_*). No unrelated secret env vars or config paths are requested.
Persistence & Privilege
always:false and disable-model-invocation:true — the skill will not be force-included or auto-invoked. The skill does write files (DOCX) by design but does not request system-wide privileges or to modify other skills' configs.
Scan Findings in Context
[base64-block] unexpected: The pre-scan flagged a 'base64-block' pattern inside the SKILL.md content. The visible SKILL.md in the archive doesn't obviously contain base64 payloads, so this may be a false positive or could indicate an embedded/obfuscated block elsewhere in the exported files. Either way, treat it as suspicious: review SKILL.md and other text files for hidden or injected content before trusting the skill.
What to consider before installing
This skill appears to do what it claims — converting Markdown to DOCX — and it correctly disables automatic agent invocation. Things to do before installing: 1) Inspect skill.mjs (and the dist/skill.mjs) to confirm it only calls the expected marktodocx runtime and does not make network requests or read unrelated files. 2) If you don't need Mermaid, prefer the standard (non-mermaid) export — the included artifact bundles a Chromium binary and recorded launch args (--no-sandbox, --disable-setuid-sandbox) which increase risk if executed. 3) Investigate the reported 'base64-block' finding by opening SKILL.md and other text files to ensure there is no hidden prompt injection or embedded payload. 4) Run the skill in a sandboxed environment first (or inspect the vendored binaries' provenance/checksums). 5) Install only from a trusted release (official GitHub Releases / the project's published artifact) and avoid copying only SKILL.md — deploy the full vetted export. If you want, I can scan skill.mjs for suspicious APIs (network, exec, file reads) and summarize the calls it makes.

Like a lobster shell, security has layers — review code before you run it.

docxvk978t21aqew3t34dqmang6bzbs851c6fexportvk978t21aqew3t34dqmang6bzbs851c6flatestvk978t21aqew3t34dqmang6bzbs851c6fmarkdownvk978t21aqew3t34dqmang6bzbs851c6fmermaidvk978t21aqew3t34dqmang6bzbs851c6fwordvk978t21aqew3t34dqmang6bzbs851c6f

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments